| VID |
13005 |
| Severity |
20 |
| Port |
|
| Protocol |
ICMP |
| Class |
Protocol |
| Detailed Description |
The host answered to an ICMP timestamp request and sent us its timestamp. This allows an attacker to know the date which is set on the host.
By accurately determining the target's clock state, the attacker can more effectively attack certain time-based pseudorandom number generators (PRNGs) and the authentication systems that rely on them.
* References:
http://www.iss.net/security_center/static/322.php |
| Recommendation |
Configure your firewall or filtering router to block the incoming ICMP timestamp requests (13), and the outgoing ICMP timestamp replies (14). |
| Related URL |
CVE-1999-0524 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
